CIS: Red Hat Enterprise Linux 9

This document provides information about the Center for Internet Security (CIS) template for Red Hat Enterprise Linux 9 Benchmark Version 1.0.0 published on November 28, 2022. This template contains implementation for 308 rules that can be installed on TrueSight Server Automation 20.x or later.

  • The existing customized template is renamed before you import the new one (by performing the steps given below).

Before you begin

Before you import this template, ensure that the following requirements are met:

  • Ensure that the default values for the template's local and global properties meet the organization standards.
  • Back up the sensors folder located in the <AppServerInstallDir>/share directory on all the Application Servers in a multiple Application Server environment. This folder contains the extended object scripts.

Step 1: Download the files

  1. Access the following EPD link and click TSSA 23.1.00 CIS Updates for Red Hat Enterprise Linux 9 to download the CIS - Red Hat Enterprise Linux 9 package:
    You must log in or register to view this page
  2. Expand to view the checksum-related information

    Verify the downloaded content by using checksums:

    S.No

    File Name

    MD5SUM

    1

    CIS - Red Hat Enterprise Linux 9.zip

    ebce9121f2fe3d55417cfa1fba0e7ad0

    2

    extendedobjects.zip

    323ba696616470ba1f90445a51facfe5

  3. Extract the contents of extendedobjects.zip to a temporary directory and copy the extracted files to the existing <APPRSERVER_INSTALL_DIR>/share/sensors directory on all the Application Servers.
  4. Move CIS - Red Hat Enterprise Linux 9.zip to the server where the TrueSight Server Automation console is installed.

Step 2: Import the compliance content

  1. Log in to the TrueSight Server Automation console.
  2. Right-click Component Templates and select Import.
    disa 2019 import.png

  3. Select the Import (Version-neutral) option and click OK.
    disa 2019 version neutral.png

  4. Select the CIS - Red Hat Enterprise Linux 9.zip package from the temporary location and click Next.

    The CIS template for CIS - Red Hat Enterprise Linux 9 is available in the CIS - Red Hat Enterprise Linux 9.zip  package.

    image-2023-4-28_11-27-18-1.png

  5. To import the template, select CIS - Red Hat Enterprise Linux 9 and click Next.
  6. Ensure that the Update objects according to the imported package and Preserve template group path options are selected, and click Next.
    image-2023-4-28_12-48-9-1.png
  7. Navigate to the last screen of the wizard and then click Finish.

  8. The template are imported successfully. Click OK.
    The imported template are shown under  CIS Compliance Content  >  CIS .

    image-2023-4-28_11-28-43-1.png

Rules within the template

The 308 rules provided in the zip package contain the following types of rules:

  • Rules that check for compliance (audit) and provide remediation - 245
  • Rules that check for compliance(audit) but do not provide remediation - 55
  • Rules that do not check for compliance and do not provide remediation - 8

The following are the details of the rules that are divided into parts:

  • Rules not divided into parts = 236
  • Rules divided into two parts (14 Rules) so (14* 2) = 28
  • Rules divided into three parts (7 Rules) so (7 * 3) = 21
  • Rules divided into four parts (2 Rules) so (2 * 4) = 8
  • Rules divided into six parts (3 Rules) so (3 * 6) = 18

The current rule count according to CIS Red Hat Enterprise 9 template after running the compliance job is 308 (236+28+21+8+18).

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*